Hackers demand $6 million for files stolen from Seattle airport operator in cyberattack

WASHINGTON — Hackers are demanding $6 million in bitcoin from the operator of Seattle-Tacoma International Airport for documents they stole in a cyberattack last month and posted on the dark web this week, an airport official said Wednesday.

The Port of Seattle, which owns and operates the airport, has decided not to pay, the official said.

The airport had previously linked the attack to a ransomware gang called Rhysida, and now the FBI is conducting a criminal investigation, said Lance Lyttle, the port’s general manager of aviation.

Lyttle told a U.S. Senate committee that the airport appeared to have thwarted the attack, but that the hackers were able to encrypt some of the data.

“On Monday, they posted a copy of eight files stolen from Port Systems on their dark website and are demanding 100 bitcoin to buy the data,” Lyttle said.

Lyttle did not describe the documents. He said the airport would contact individuals whose personal information may have been stolen.

Port officials have said paying for the ransomware would not be a good use of taxpayer money.

The airport is still recover from the attackwhich began on August 24. The attack was launched on a busy timea week before Labor Day weekend.

Flights were able to continue flying, but the attack paralyzed ticket sales, check-in kiosks and baggage handling. Passengers on smaller airlines had to use paper boarding passes.

The mayor of Columbus, Ohio, said last month that Rhysida was behind the plans. a data breach of city systems. The mayor downplayed the value of the stolen data and said the city never received a ransom demand.